Group Policy Issue – Windows 10 April 2018

There appears to be a weird issue where in the April 2018 release of Windows 10 group policy fails to refresh the user part of the group policy. Instead you get the message below

Group Policy Fail April 2018

Shell

1

2

3

4

5

6

7

8

Updating policy...

Computer Policy update has completed successfully.

User Policy could not be updated successfully. The following errors were encountered:

The processing of Group Policy failed. Windows could not determine if the user and computer accounts are in the same forest. Ensure the user domain name matches the name of a trusted domain that resides in the same forest as the computer account.

To diagnose the failure, review the event log or run GPRESULT /H GPReport.html from the command line to access information about Group Policy results.

This is caused by the netlogon service not running (and being set to manual?!). To resolve the issue you need to do the following:

Press Win + R on the keyboard to open the run window

Type in services.msc and click run

Scroll down and look for Netlogon, if the status is not Running, then that’s why you’re getting this issue

Double-Click on Netlogon and change the Startup Type to Automatic and click the Start button

Once the service is running, click the OK button

Now try running gpupdate again

If you have a large number of computers running Windows 10 and want to fix them all you can make this change using group policy. To do so carry out the following in an appropriate Policy object